
METHOD FOR MANAGING CERTIFICATE REVOCATION LIST BY 
DISTRIBUTING IT 

Field of the Invention 

5 

The present invention relates to a method for managing 
certificate revocation list (CRL) by distributing it in a 
security service of the public key infrastructure (PKI) 
defined in ITU-T X.509 (ITU-Telecommunication Standardization 
10 Sector X.509), and a recording medium programmed by a computer 
for embodying the method. 

Prior Art of the Invention 

15 The PKI serves as a certifying framework consisting of a 

plurality of certifying agencies connected in hierarchy that 
provides the users with the security services using the public 
key password system necessary for confirming the validities of 
their information, certifying their identification, preventing 

20 them from denying the actions already performed, etc. in an 
open or distributed communication network such as Internet. 

The PKI is also defined by the IBM Co. as a system of 
certifying agencies, registering agencies and storage 
establishments for providing services such as issuing, 

25 attesting, renewing, revoking and registering certificates, 
and managing password keys. In addition, the Canadian 
government defines the PKI as a system for transferring 
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password keys and certificates enabling the traders to safely 
perform electronic commercial dealings or exchange important 
information. Therefore, the PKI may be considered as the 
integrated system of the hardware, software and policies for 
5 controlling the procedures of issuing and revoking the 
certificates for the security services such as attesting 
validities, certifying identifications, preventing denials of 
the actions already performed, etc., and the various keys such 
as password and public keys necessary for producing and 

10 confirming the electronic documents. Hence, there are required 
the international standardizations of the public key password 
system, PKI control and operation, certificate specifications 
and policies, and mutual certifications for the PKI to be 
effectively used for electronic commercial dealings, banking, 

15 security trading, insurance, etc. between different certifying 
agencies and between different countries. 

Meanwhile, the ITU-T X.509 defines version 1 (VI), 
version 2 (V2) , and version 3 (V3) for the certificate 
specifications issued by a certifying agency to a subscriber. 

20 The distribution point information structure of the CRL 
relating to the invention concerns the extension field of the 
certificate as defined in V3 (refer to Fig. 3A) , and the 
extension field of the CRL as defined in V2 (refer to Fig. 
3B) . 

25 Thus, the ITU-T X.509 provides the fundamental 

information necessary for applying the distribution points to 
the CRL, but does not clearly define how to specifically apply 
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the distribution point mechanism to the CRL. An example of the 
CRL not employing the distribution point mechanism is 
described in reference to Figs. 1 and 2 as follows. 

Fig. 2 is a flow chart for illustrating the process of 

5 attesting the validity of a subscriber's certificate based on 
the CRL in the user's terminal environment as applied to Fig. 
1, which shows no distribution point applied to the CRL. 
Referring to Fig. 2, the user's terminal receives in step 201 
the subject name SUBJECT_NAME (hereinafter referred to as tt s") 

10 of the subscriber to prepare in step 202 a phrase 
n LDAP__SEARCH" concerning the subscriber's certificate. 

Then, when the user's terminal requests in step 203 the 
directory server 204 to send the subscriber's certificate 
according to the prepared phrase, the directory server 2 04 

15 prepares a phrase w LD AP_S EAR CH " concerning the CRL according 
to the "s" of the user in step 205. Requesting the directory 
server to send the CRL according to the prepared phrase in 
step 206, the directory server 204 sends the entire CLR file 
in step 207. 

20 Checking the duration of the effective time based on the 

CRL file in step 208 , the user's terminal retrieves in step 
209 the serial number of the subscriber's certificate 
according to the phrase "LDAP_SEARCH" prepared in step 205. 
Finally, if the serial number is confirmed to be in the CRL in 

25 step 210, the user's certificate is invalidated in step 212, 
or otherwise validated in step 211. 

In this context, when such conventional certifying system 



3 



issues a certificate to a subscriber, it would be more 
effective that the subject which is one of the mandatory 
fields constituting the certificate be defined as the input 
data of the hash function so as to use its value as the 
5 reference distribution point of the CRL. 

Summary of the Invention 

It is an object of the present invention to provide a 
10 method for managing the CRL by applying the distribution point 
mechanism thereto, and a recording medium programmed by a 
computer for embodying the method. 

It is another object of the present invention to provide 
the user of the security services with means for effectively 
15 searching the CRL containing the valid information of the 
subscribers' certificates from the directory server. 

It is still another object of the present invention to 
reduce the time taken for performing the security services by 
minimizing the size of the CRL file downloaded from the 
20 directory server to the user's terminal. 

It is further another object of the present invention to 
prevent concentration of the accesses to a certain CRL node by 
distributing the CRL information among a number N of CRL nodes 
in balance. 

25 According to an aspect of the present invention, a method 

for distributively managing the CRL in a certifying system to 
certify the validity of a subscriber in an open communications 
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network such as Internet, comprises the steps of registering 
the certificate policy statement for the CRL by determining 
the distribution interval of the CRL, setting the structure of 
the certificate of the subscriber to issue the certificate 
5 according to the registered certificate policy statement, 
attesting the certificate by applying the distribution point 
mechanism according to the distribution interval to the CRL, 
and revoking the certificate by using the distribution points 
to revise the CRL displayed. 

10 According to another aspect of the present invention, 

there is provided a recording medium programmed by a computer 
for performing a method for distributively managing the CRL in 
a certifying system to certify the validity of a subscriber in 
an open communications network such as Internet, which 

15 comprises the steps of registering the certificate policy 
statement for the CRL by determining the distribution interval 
of the CRL, setting the structure of the certificate of the 
subscriber to issue the certificate according to the 
registered certificate policy statement, attesting the 

20 certificate by applying the distribution point mechanism 
according to the distribution interval to the CRL, and 
revoking the certificate by using the distribution points to 
revise the CRL displayed. 

Thus, the invention provides the user of the security 

25 services with means for effectively searching the CRL 
containing the valid information of the subscribers' 
certificates from the directory server, reduces the time taken 



5 



for performing the security services by minimizing the size of 
the CRL file downloaded from the directory server to the 
user's terminal, and prevents concentration of the accesses to 
a certain CRL 'node by distributing the CRL information among a 
5 number N of CRL nodes in balance . 

Brief Description of the Drawings 

The above and other objects and features of the instant 
10 invention will become apparent from the following description 
of preferred embodiments taken in conjunction with the 
accompanying drawings, in which: 

Fig. 1 is a diagram for illustrating the structure of 
managing the CRL by a conventional directory server; 
15 Fig. 2 is a flow chart for illustrating the process of 

validating the subscriber's certificate by means of the CRL in 
the user's terminal environment as shown in Fig. 1. 

Figs. 3A and 3B illustrate the data structures defined 
for the CRL provided with the distribution points in the ITU-T 
20 X.509; 

Fig. 4 is a schematic diagram for illustrating the 
structure of a PKI security service system where the invention 
is applied; 

Fig. 5 is a flow chart for illustrating the procedure of 
25 registering the certificate policy statement in the inventive 
method of distributively managing the CRL; 

Fig. 6 is a flow chart for illustrating the procedure of 
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issuing the certificate by the certifying system according to 
the inventive method of distributively managing the CRL; 

Fig. 7 is a flow chart for illustrating the procedure of 
validating the subscriber's certificate in the inventive 
5 method of distributively managing the CRL; 

Fig. 8 is a flow chart for illustrating the procedure of 
revoking the subscriber's certificate in the inventive method 
of distributively managing the CRL; and 

Fig. 9 is a diagram for illustrating the structure of 
10 managing the CRL by the directory server according to the 
inventive method of distributively managing the CRL. 

Preferred Embodiment of the Invention 

15 Referring to Fig. 4, the PKI security service system 

comprises a certifying agency or system (CA) 41 for issuing, 
revoking, and reissuing a certificate to a subscriber, a 
directory server 42 for managing the files corresponding to 
the subscribers' certificates and CRL received from CA 41, and 

20 a user's terminal 43 for requesting CA 41 to issue/revoke the 
certificate and for accessing the directory server 42 to 
download the certificate of a subscriber and CRL to perform 
the security services. 

Describing the procedure of registering the certificate 

25 policy statement (CPS) relating to CRL in connection with Fig. 
5, the CA defines the number N of nodes in the directory 
information tree (DIT) and the hash function H() to manage the 
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CRL based on the number of the expected subscribers in step 
501. In this case, W N" represents the number of CRL files 
managed by CA, and H() the hash function used by CA. 

Then, the subject name ( SUB JECT_NAME , hereinafter 
5 referred to as W S") that is one of the essential items 
constituting the subscriber's certificate is defined as the 
input value of the hash function in step 502. The function and 
the values of the variables defined in steps 501 and 502 are 
used to calculate the distribution interval in step 503 
10 according to the following Equations 1 and 2: 

Equation 1 

H(s) = I 



Equation 2 

V -V ■ 

|^ max mm J 

N 

In Equations 1 and 2, assuming that U V" represents the value 
obtained by inputting "S" to H() in Equation 1, the difference 
between the maximum value V max and the minimum value V min is 
divided by W N" to produce the distribution interval "I" of CRL 

20 Then, when registering CPS of CRL, the corresponding variable 
crl_dp_flag is set to yes in step 504 in order to apply the 
distribution point mechanism to CRL before completing the 
registration of CPS in step 505. 

Referring to Fig. 6, when CA issues a certificate to a 

25 subscriber, it firstly determines in step 601 whether the CPS 
corresponding to the subscriber sets the distribution point to 
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be applied to the CRL (crl__dp_f lag=yes) or not. If so, the 
subject name SUB JECT_NAME , i.e., n S" of the subscriber is 
retrieved as the input value of the hash function in step 603, 
or otherwise skipping to step 602. Then, the value of the hash 
5 function is obtained as Vtmp in step 604 (Vtmp=H (s) ) . 

Through the steps 605 to 607 is obtained the interval 
value including Vtmp. In this case, the distinguished name DN 
of CRL is structured through the steps 608 to 611 so that OU 
(Organization Unit) = CRLDP(n), O (Organization) = SECURITY, 
10 and C (Country) = kr. Namely, the steps of 605 to 607 are to 
determine the value of w n" that is the interval value of CRL 
to complete DN of CRL through the steps of 608 to 611 when CRL 
is revoked. 

The DN of the CRL determined through the steps of 608 to 
15 611 and the DN of the CA issuing the CRL are respectively put 
into the full name fullName and the name of the CA 
nameRelativeToCRLIssuer constituting the structure of the 
distribution point name DistributionPointName to complete the 
information of the CRL of the subscriber obtained by applying 
20 the distribution point to the certificate structure of the 
subscriber in step 612, as shown in Fig. 3A. 

Describing the procedure of validating the certificate 
of the subscriber in connection with Fig. 7, the user's 
terminal firstly prepares a phrase LDAP_SEARCH concerning the 
25 subscriber's certificate in step 702 based on the subject name 
SU33JECT_NAME received from the subscriber or application 
program in step 701. If the user's terminal requests the 
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subscriber's certificate from the directory server 704 in step 
703 according to the prepared phrase, the directory server 704 
sends the subscriber's certificate to the user's terminal 
according to W S". Then, the user's terminal retrieves the 
5 information of the CRL distribution point crlDistributionPoint , 
as shown in Fig. 3A. 

Requesting the CRL from the directory server 704 
according to the full name retrieved from the information of 
the CRL distribution point in step 706, the directory server 

10 704 sends the CRL file designated the corresponding DN defined 
in the CRL distribution point in step 707. Then, checking the 
duration of the effective time based on the CRL file in step 
708, the user's terminal retrieves in step 709 the serial 
number of the subscriber's certificate according to the 

15 information of the CRL distribution point crlDistributionPoint 
obtained in step 705. Then, the subscriber's certificate is 
invalidated in step 712 or validated in step 711 according as 
the serial number is included in the CRL or not. 

Describing the procedure of revoking the subscriber's 

20 certificate in connection with Fig. 8, the CA determines in 
step 801 that the CPS applied to the subscriber sets the 
distribution point to be applied to the CRL (crl_dp_f lag=yes) . 
If so, the CA loads from the database DB the certificate of 
the subscriber requesting revocation in step 803, or otherwise 

25 skipping to step 802. 

From the loaded certificate is retrieved the information 
of the CRL distribution point crlDistributionPoint, from which 
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are 



sequentially 



retrieved 



distribution 



point 



DistributionPoint , 



distribution 



point 



name 



DistributionPointName, and full name fullName in step 804. 
Then, the CRL file identified by crlDistributionPoint , 
5 DistributionPointName, and fullName is loaded from the 
corresponding database 806 through steps 805 and 807. Then, 
the CA retrieves the serial number of the subscriber's 
certificate and the reason of revocation from the packet 
received from the subscriber in step 808 to write the serial 

10 number and the code representing the reason of revocation into 
the corresponding CRL in step 809. Finally, the corresponding 
CRL file is placed in a suitable node in DIT manage by the 
directory server. Thus, applying the inventive distribution 
point mechanism, the CRL is distributed in balance among N 

15 nodes in the directory server as shown in Fig. 9. 

Summarizing the effects of the invention, firstly the 
time taken for the user of security services to validate the 
subscriber's certificate is considerably reduced because of 
the small-sized CRL. Secondly the CRL is distributed in 

20 balance among a plurality of nodes in the directory server so 
that the accesses are not concentrated to a particular CRL 
node. Thirdly the distribution of the CRL by means of the 
distribution point mechanism enables the CA to effectively 
manage a plurality of CRL files uniformly sized and to deal 

25 with the users' names in a variety of formats. 

Although the preferred embodiments of the invention have 
been disclosed for illustrative purpose, those skilled in the 
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art will be appreciate that various modifications, additions 
and substitutions are possible, without departing from the 
scope and spirit of the invention as disclosed in the 
accompanying claims . 
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